mirror of
https://github.com/SuperClaude-Org/SuperClaude_Framework.git
synced 2025-12-17 09:46:06 +00:00
89a5cf33d6
* Fix: Install only selected MCP servers and ensure valid empty backups This commit addresses two separate issues: 1. **MCP Installation:** The `install` command was installing all MCP servers instead of only the ones selected by the user. The `_install` method in `setup/components/mcp.py` was iterating through all available servers, not the user's selection. This has been fixed to respect the `selected_mcp_servers` configuration. A new test has been added to verify this fix. 2. **Backup Creation:** The `create_backup` method in `setup/core/installer.py` created an invalid `.tar.gz` file when the backup source was empty. This has been fixed to ensure that a valid, empty tar archive is always created. A test was added for this as well. Co-authored-by: Mithun Gowda B <mithungowda.b7411@gmail.com> Co-authored-by: Jules <jules-ai-assistant@users.noreply.github.com> * Fix: Correct installer validation for MCP and MCP Docs components This commit fixes a validation issue in the installer where it would incorrectly fail after a partial installation of MCP servers. The `MCPComponent` validation logic was checking for all "required" servers, regardless of whether they were selected by the user. This has been corrected to only validate the servers that were actually installed, by checking against the list of installed servers stored in the metadata. The metadata storage has also been fixed to only record the installed servers. The `MCPDocsComponent` was failing validation because it was not being registered in the metadata if no documentation files were installed. This has been fixed by ensuring the post-installation hook runs even when no files are copied. New tests have been added for both components to verify the corrected logic. Co-authored-by: Mithun Gowda B <mithungowda.b7411@gmail.com> Co-authored-by: Jules <jules-ai-assistant@users.noreply.github.com> * Fix: Allow re-installation of components and correct validation logic This commit fixes a bug that prevented new MCP servers from being installed on subsequent runs of the installer. It also fixes the validation logic that was causing failures after a partial installation. The key changes are: 1. A new `is_reinstallable` method has been added to the base `Component` class. This allows certain components (like the `mcp` component) to be re-run even if they are already marked as installed. 2. The installer logic has been updated to respect this new method. 3. The `MCPComponent` now correctly stores only the installed servers in the metadata. 4. The validation logic for `MCPComponent` and `MCPDocsComponent` has been corrected to prevent incorrect failures. New tests have been added to verify all aspects of the new logic. Co-authored-by: Mithun Gowda B <mithungowda.b7411@gmail.com> Co-authored-by: Jules <jules-ai-assistant@users.noreply.github.com> * feat: Display authors in UI header and update author info This commit implements the user's request to display author names and emails in the UI header of the installer. The key changes are: 1. The `__email__` field in `SuperClaude/__init__.py` has been updated to include both authors' emails. 2. The `display_header` function in `setup/utils/ui.py` has been modified to read the author and email information and display it. 3. A new test has been added to `tests/test_ui.py` to verify the new UI output. Co-authored-by: Mithun Gowda B <mithungowda.b7411@gmail.com> Co-authored-by: Jules <jules-ai-assistant@users.noreply.github.com> * feat: Version bump to 4.1.0 and various fixes This commit prepares the project for the v4.1.0 release. It includes a version bump across all relevant files and incorporates several bug fixes and feature enhancements from recent tasks. Key changes in this release: - **Version Bump**: The project version has been updated from 4.0.9 to 4.1.0 in all configuration files, documentation, and source code. - **Installer Fixes**: - Components can now be marked as `reinstallable`, allowing them to be re-run on subsequent installations. This fixes a bug where new MCP servers could not be added. - The validation logic for `mcp` and `mcp_docs` components has been corrected to avoid incorrect failures. - A bug in the backup creation process that created invalid empty archives has been fixed. - **UI Enhancements**: - Author names and emails are now displayed in the installer UI header. - **Metadata Updates**: - Mithun Gowda B has been added as an author. - **New Tests**: - Comprehensive tests have been added for the installer logic, MCP components, and UI changes to ensure correctness and prevent regressions. Co-authored-by: Mithun Gowda B <mithungowda.b7411@gmail.com> Co-authored-by: Jules <jules-ai-assistant@users.noreply.github.com> * fix: Resolve dependencies for partial installs and other fixes This commit addresses several issues, the main one being a dependency resolution failure during partial installations. Key changes: - **Dependency Resolution**: The installer now correctly resolves the full dependency tree when a user requests to install a subset of components. This fixes the "Unknown component: core" error. - **Component Re-installation**: A new `is_reinstallable` flag allows components like `mcp` to be re-run on subsequent installs, enabling the addition of new servers. - **Validation Logic**: The validation for `mcp` and `mcp_docs` has been corrected to avoid spurious failures. - **UI and Metadata**: Author information has been added to the UI header and source files. - **Version Bump**: The project version has been updated to 4.1.0. - **Tests**: New tests have been added to cover all the above changes. Co-authored-by: Mithun Gowda B <mithungowda.b7411@gmail.com> Co-authored-by: Jules <jules-ai-assistant@users.noreply.github.com> * fix: Installer fixes and version bump to 4.1.0 This commit includes a collection of fixes for the installer logic, UI enhancements, and a version bump to 4.1.0. Key changes: - **Dependency Resolution**: The installer now correctly resolves the full dependency tree for partial installations, fixing the "Unknown component: core" error. - **Component Re-installation**: A new `is_reinstallable` flag allows components like `mcp` to be re-run to add new servers. - **MCP Installation**: The non-interactive installation of the `mcp` component now correctly prompts the user to select servers. - **Validation Logic**: The post-installation validation logic has been corrected to only validate components from the current session and to use the correct list of installed servers. - **UI & Metadata**: Author information has been added to the UI and source files. - **Version Bump**: The project version has been updated from 4.0.9 to 4.1.0 across all files. - **Tests**: New tests have been added to cover all the bug fixes. Co-authored-by: Mithun Gowda B <mithungowda.b7411@gmail.com> Co-authored-by: Jules <jules-ai-assistant@users.noreply.github.com> * feat: Add --authors flag and multiple installer fixes This commit introduces the `--authors` flag to display author information and includes a collection of fixes for the installer logic. Key changes: - **New Feature**: Added an `--authors` flag that displays the names, emails, and GitHub usernames of the project authors. - **Dependency Resolution**: Fixed a critical bug where partial installations would fail due to unresolved dependencies. - **Component Re-installation**: Added a mechanism to allow components to be "reinstallable", fixing an issue that prevented adding new MCP servers on subsequent runs. - **MCP Installation**: The non-interactive installation of the `mcp` component now correctly prompts for server selection. - **Validation Logic**: Corrected the post-installation validation to prevent spurious errors. - **Version Bump**: The project version has been updated to 4.1.0. - **Metadata**: Author and GitHub information has been added to the source files. - **UI**: The installer header now displays author information. - **Tests**: Added new tests for all new features and bug fixes. Co-authored-by: Mithun Gowda B <mithungowda.b7411@gmail.com> Co-authored-by: Jules <jules-ai-assistant@users.noreply.github.com> * Add Docker support and framework enhancements - Add serena-docker.json MCP configuration - Update MCP configs and installer components - Enhance CLI commands with new functionality - Add symbols utility for framework operations - Improve UI and logging components 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> * Bump version from 4.1.1 to 4.1.2 - Update version across all package files - Update documentation and README files - Update Python module version strings - Update feature configuration files 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> Co-Authored-By: Mithun Gowda B <mithungowda.b7411@gmail.com> * Bump version from 4.1.2 to 4.1.3 - Update version across all package files - Update documentation and README files - Update Python module version strings - Update feature configuration files 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> Co-Authored-By: Mithun Gowda B <mithungowda.b7411@gmail.com> * Fix home directory detection for immutable distros - Add get_home_directory() function to handle /var/home/$USER paths - Support Fedora Silverblue, Universal Blue, and other immutable distros - Replace all Path.home() calls throughout the setup system - Add fallback methods for edge cases and compatibility - Create test script for immutable distro validation Fixes: - Incorrect home path detection on immutable Linux distributions - Installation failures on Fedora Silverblue/Universal Blue - Issues with Claude Code configuration paths Technical changes: - New get_home_directory() in utils/environment.py - Updated all CLI commands, validators, and core components - Maintains backward compatibility with standard systems - Robust fallback chain for edge cases 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> Co-Authored-By: Mithun Gowda B <mithungowda.b7411@gmail.com> * Fix circular import and complete immutable distro support - Move get_home_directory() to separate paths.py module - Resolve circular import between environment.py and logger.py - Update all import statements across the setup system - Verify functionality with comprehensive testing Technical changes: - Created setup/utils/paths.py for path utilities - Updated imports in all affected modules - Maintains full backward compatibility - Fixes installation on immutable distros Testing completed: - ✅ Basic home directory detection works - ✅ Installation system integration works - ✅ Environment utilities integration works - ✅ Immutable distro logic validated 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> Co-Authored-By: Mithun Gowda B <mithungowda.b7411@gmail.com> * Fix mcp_docs installation bugs - Fix mcp_docs component incorrectly marking as installed when no MCP servers selected - Add MCP server selection prompt when mcp_docs component is explicitly requested - Return False instead of calling _post_install() when no servers selected or files found - Add user-friendly warning when mcp_docs requested without server selection - Remove mcp_docs from installation when no servers are available 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> * Fix MCP server name mapping for documentation files - Add mapping for sequential-thinking -> MCP_Sequential.md - Add mapping for morphllm-fast-apply -> MCP_Morphllm.md - Ensures mcp_docs installation works with all MCP server naming conventions 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> * Enable mcp_docs component reinstallation - Add is_reinstallable() method returning True to allow repeat installations - Fixes issue where mcp_docs was skipped on subsequent installation attempts - Enables users to change MCP server selections and update documentation 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> * Fix repeat installation issues for mcp_docs - Ensure mcp component is auto-added when mcp_docs is selected with servers - Fix component_files tracking to only include successfully copied files - Ensures CLAUDE.md gets properly updated with MCP documentation imports - Fixes issue where MCP servers weren't installed on repeat attempts 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> * Fix MCP component metadata tracking and debug logging - Fix servers_count to track actually installed servers instead of total available - Add installed_servers list to metadata for better tracking - Add debug logging to trace component auto-addition - Ensures MCP component appears properly in metadata when servers are installed 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> * Fix pyproject.toml license format and add missing classifier - Fix license format from string to {text = "MIT"} format - Add missing "License :: OSI Approved :: MIT License" classifier - Fix indentation consistency in classifiers section - Resolves setup.py installation errors and PEP 621 compliance 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> * Fix MCP incremental installation and auto-detection system PROBLEM FIXED: - MCP component only registered servers selected during current session - mcp_docs component only installed docs for newly selected servers - Users had to reinstall everything when adding new MCP servers - Installation failed if no servers selected but servers existed SOLUTION IMPLEMENTED: - Add auto-detection of existing MCP servers from config files (.claude.json, claude_desktop_config.json) - Add CLI detection via 'claude mcp list' output parsing - Add smart server merging (existing + selected + previously installed) - Add server name normalization for common variations - Fix CLI logic to allow mcp_docs installation without server selection - Add graceful error handling for corrupted configs KEY FEATURES: ✅ Auto-detects existing MCP servers from multiple config locations ✅ Supports incremental installation (add new servers without breaking existing) ✅ Works with or without --install-dir argument ✅ Handles server name variations (sequential vs sequential-thinking, etc.) ✅ Maintains metadata persistence across installation sessions ✅ Graceful fallback when config files are corrupted ✅ Compatible with both interactive and non-interactive modes TESTED SCENARIOS: - Fresh installation with no MCP servers ✅ - Auto-detection with existing servers ✅ - Incremental server additions ✅ - Mixed mode (new + existing servers) ✅ - Error handling with corrupted configs ✅ - Default vs custom installation directories ✅ - Interactive vs command-line modes ✅ Files changed: - setup/cli/commands/install.py: Allow mcp_docs auto-detection mode - setup/components/mcp.py: Add comprehensive auto-detection logic - setup/components/mcp_docs.py: Add auto-detection for documentation 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> * Integrate SuperClaude framework flags into help command ENHANCEMENT: - Add comprehensive flag documentation to /sc:help command - Include all 25 SuperClaude framework flags with descriptions - Organize flags into logical categories (Mode, MCP, Analysis, Execution, Output) - Add practical usage examples showing flag combinations - Include flag priority rules and precedence hierarchy NEW SECTIONS ADDED: ✅ Mode Activation Flags (5 flags): --brainstorm, --introspect, --task-manage, --orchestrate, --token-efficient ✅ MCP Server Flags (8 flags): --c7, --seq, --magic, --morph, --serena, --play, --all-mcp, --no-mcp ✅ Analysis Depth Flags (3 flags): --think, --think-hard, --ultrathink ✅ Execution Control Flags (6 flags): --delegate, --concurrency, --loop, --iterations, --validate, --safe-mode ✅ Output Optimization Flags (3 flags): --uc, --scope, --focus ✅ Flag Priority Rules: Clear hierarchy and precedence guidelines ✅ Usage Examples: 4 practical examples showing real-world flag combinations IMPACT: - Users can now discover all SuperClaude capabilities from /sc:help - Single source of truth for commands AND flags - Improved discoverability of advanced features - Clear guidance on flag usage and combinations - Help content nearly doubled (68 → 148 lines) with valuable reference information Files changed: - SuperClaude/Commands/help.md: Integrate FLAGS.md content with structured tables and examples 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> * Remove non-existent commands from modes.md documentation PROBLEM FIXED: - Documentation contained references to fake/non-existent commands - Commands like sc:fix, sc:simple-pix, sc:update, sc:develop, sc:modernize, sc:simple-fix don't exist in CLI - Confusing users who try to use these commands and get errors - Inconsistency between documentation and actual SuperClaude command availability COMMANDS REMOVED/REPLACED: ❌ /sc:simple-fix → ✅ /sc:troubleshoot (real command) ❌ /sc:develop → ✅ /sc:implement (real command) ❌ /sc:modernize → ✅ /sc:improve (real command) AFFECTED FILES: - Docs/User-Guide/modes.md: Fixed all non-existent command references - Docs/User-Guide-jp/modes.md: Fixed Japanese translation with same issues - Docs/User-Guide-zh/modes.md: Fixed Chinese translation with same issues VERIFICATION: ✅ All remaining /sc: commands verified to exist in SuperClaude/Commands/ ✅ No more references to fake commands in any language version ✅ Examples now use only real, working SuperClaude commands ✅ User experience improved - no more confusion from non-working commands REAL COMMANDS REFERENCED: - /sc:analyze, /sc:brainstorm, /sc:help, /sc:implement - /sc:improve, /sc:reflect, /sc:troubleshoot - All verified to exist in CLI implementation 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> * Version bump to 4.1.4 CHANGELOG: ✅ Added comprehensive flag documentation to /sc:help command ✅ Fixed MCP incremental installation and auto-detection system ✅ Cleaned up documentation by removing non-existent commands ✅ Enhanced user experience with complete capability reference VERSION UPDATES: - Updated VERSION file: 4.1.3 → 4.1.4 - Updated pyproject.toml: 4.1.3 → 4.1.4 - Updated package.json: 4.1.3 → 4.1.4 - Updated all Python __init__.py fallback versions - Updated all documentation references across all languages - Updated setup/data/features.json component versions - Updated CHANGELOG.md with comprehensive 4.1.4 release notes SCOPE OF CHANGES: 📦 Core files: VERSION, pyproject.toml, package.json, __init__.py files 📚 Documentation: All .md files across English, Japanese, Chinese 🔧 Setup files: features.json, base.py version references 📝 Project files: README files, CHANGELOG, SECURITY, CONTRIBUTING VERIFICATION: ✅ No remaining 4.1.3 references found ✅ 29 files now properly reference 4.1.4 ✅ All language versions consistently updated ✅ Package metadata properly versioned for distribution 🤖 Generated with [Claude Code](https://claude.ai/code) via [Happy](https://happy.engineering) Co-Authored-By: Claude <noreply@anthropic.com> Co-Authored-By: Happy <yesreply@happy.engineering> --------- Co-authored-by: google-labs-jules[bot] <161369871+google-labs-jules[bot]@users.noreply.github.com> Co-authored-by: Jules <jules-ai-assistant@users.noreply.github.com> Co-authored-by: Claude <noreply@anthropic.com> Co-authored-by: Happy <yesreply@happy.engineering>
789 lines
32 KiB
Python
789 lines
32 KiB
Python
"""
|
|
Security utilities for SuperClaude installation system
|
|
Path validation and input sanitization
|
|
|
|
This module provides comprehensive security validation for file paths and user inputs
|
|
during SuperClaude installation. It includes protection against:
|
|
- Directory traversal attacks
|
|
- Installation to system directories
|
|
- Path injection attacks
|
|
- Cross-platform security issues
|
|
|
|
Key Features:
|
|
- Platform-specific validation (Windows vs Unix)
|
|
- User-friendly error messages with actionable suggestions
|
|
- Comprehensive path normalization
|
|
- Backward compatibility with existing validation logic
|
|
|
|
Fixed Issues:
|
|
- GitHub Issue #129: Fixed overly broad regex patterns that prevented installation
|
|
in legitimate paths containing "dev", "tmp", "bin", etc.
|
|
- Enhanced cross-platform compatibility
|
|
- Improved error message clarity
|
|
|
|
Architecture:
|
|
- Separated pattern categories for better maintainability
|
|
- Platform-aware validation logic
|
|
- Comprehensive test coverage
|
|
"""
|
|
|
|
import re
|
|
import os
|
|
from pathlib import Path
|
|
from typing import List, Optional, Tuple, Set
|
|
import urllib.parse
|
|
from .paths import get_home_directory
|
|
|
|
|
|
class SecurityValidator:
|
|
"""Security validation utilities"""
|
|
|
|
# Directory traversal patterns (match anywhere in path - platform independent)
|
|
# These patterns detect common directory traversal attack vectors
|
|
TRAVERSAL_PATTERNS = [
|
|
r'\.\./', # Directory traversal using ../
|
|
r'\.\.\.', # Directory traversal using ...
|
|
r'//+', # Multiple consecutive slashes (path injection)
|
|
]
|
|
|
|
# Unix system directories (match only at start of path)
|
|
# These patterns identify Unix/Linux system directories that should not be writable
|
|
# by regular users. Using ^ anchor to match only at path start prevents false positives
|
|
# for user directories containing these names (e.g., /home/user/dev/ is allowed)
|
|
UNIX_SYSTEM_PATTERNS = [
|
|
r'^/etc/', # System configuration files
|
|
r'^/bin/', # Essential command binaries
|
|
r'^/sbin/', # System binaries
|
|
r'^/usr/bin/', # User command binaries
|
|
r'^/usr/sbin/', # Non-essential system binaries
|
|
r'^/var/', # Variable data files
|
|
r'^/tmp/', # Temporary files (system-wide)
|
|
r'^/dev/', # Device files - FIXED: was r'/dev/' (GitHub Issue #129)
|
|
r'^/proc/', # Process information pseudo-filesystem
|
|
r'^/sys/', # System information pseudo-filesystem
|
|
]
|
|
|
|
# Windows system directories (match only at start of path)
|
|
# These patterns identify Windows system directories using flexible separator matching
|
|
# to handle both forward slashes and backslashes consistently
|
|
WINDOWS_SYSTEM_PATTERNS = [
|
|
r'^c:[/\\]windows[/\\]', # Windows system directory
|
|
r'^c:[/\\]program files[/\\]', # Program Files directory
|
|
# Note: Removed c:\\users\\ to allow installation in user directories
|
|
# Claude Code installs to user home directory by default
|
|
]
|
|
|
|
# Combined dangerous patterns for backward compatibility
|
|
# This maintains compatibility with existing code while providing the new categorized approach
|
|
DANGEROUS_PATTERNS = TRAVERSAL_PATTERNS + UNIX_SYSTEM_PATTERNS + WINDOWS_SYSTEM_PATTERNS
|
|
|
|
# Dangerous filename patterns
|
|
DANGEROUS_FILENAMES = [
|
|
r'\.exe$', # Executables
|
|
r'\.bat$',
|
|
r'\.cmd$',
|
|
r'\.scr$',
|
|
r'\.dll$',
|
|
r'\.so$',
|
|
r'\.dylib$',
|
|
r'passwd', # System files
|
|
r'shadow',
|
|
r'hosts',
|
|
r'\.ssh/',
|
|
r'\.aws/',
|
|
r'\.env', # Environment files
|
|
r'\.secret',
|
|
]
|
|
|
|
# Allowed file extensions for installation
|
|
ALLOWED_EXTENSIONS = {
|
|
'.md', '.json', '.py', '.js', '.ts', '.jsx', '.tsx',
|
|
'.txt', '.yml', '.yaml', '.toml', '.cfg', '.conf',
|
|
'.sh', '.ps1', '.html', '.css', '.svg', '.png', '.jpg', '.gif'
|
|
}
|
|
|
|
# Maximum path lengths
|
|
MAX_PATH_LENGTH = 4096
|
|
MAX_FILENAME_LENGTH = 255
|
|
|
|
@classmethod
|
|
def validate_path(cls, path: Path, base_dir: Optional[Path] = None) -> Tuple[bool, str]:
|
|
"""
|
|
Validate path for security issues with enhanced cross-platform support
|
|
|
|
This method performs comprehensive security validation including:
|
|
- Directory traversal attack detection
|
|
- System directory protection (platform-specific)
|
|
- Path length and filename validation
|
|
- Cross-platform path normalization
|
|
- User-friendly error messages
|
|
|
|
Architecture:
|
|
- Uses both original and resolved paths for validation
|
|
- Applies platform-specific patterns for system directories
|
|
- Checks traversal patterns against original path to catch attacks before normalization
|
|
- Provides detailed error messages with actionable suggestions
|
|
|
|
Args:
|
|
path: Path to validate (can be relative or absolute)
|
|
base_dir: Base directory that path should be within (optional)
|
|
|
|
Returns:
|
|
Tuple of (is_safe: bool, error_message: str)
|
|
- is_safe: True if path passes all security checks
|
|
- error_message: Detailed error message with suggestions if validation fails
|
|
"""
|
|
try:
|
|
# Convert to absolute path
|
|
abs_path = path.resolve()
|
|
|
|
# For system directory validation, use the original path structure
|
|
# to avoid issues with symlinks and cross-platform path resolution
|
|
original_path_str = cls._normalize_path_for_validation(path)
|
|
resolved_path_str = cls._normalize_path_for_validation(abs_path)
|
|
|
|
# Check path length
|
|
if len(str(abs_path)) > cls.MAX_PATH_LENGTH:
|
|
return False, f"Path too long: {len(str(abs_path))} > {cls.MAX_PATH_LENGTH}"
|
|
|
|
# Check filename length
|
|
if len(abs_path.name) > cls.MAX_FILENAME_LENGTH:
|
|
return False, f"Filename too long: {len(abs_path.name)} > {cls.MAX_FILENAME_LENGTH}"
|
|
|
|
# Check for dangerous patterns using platform-specific validation
|
|
# Always check traversal patterns (platform independent) - use original path string
|
|
# to detect patterns before normalization removes them
|
|
original_str = str(path).lower()
|
|
for pattern in cls.TRAVERSAL_PATTERNS:
|
|
if re.search(pattern, original_str, re.IGNORECASE):
|
|
return False, cls._get_user_friendly_error_message("traversal", pattern, abs_path)
|
|
|
|
# Check platform-specific system directory patterns - use original path first, then resolved
|
|
# Always check both Windows and Unix patterns to handle cross-platform scenarios
|
|
|
|
# Check Windows system directory patterns
|
|
for pattern in cls.WINDOWS_SYSTEM_PATTERNS:
|
|
if (re.search(pattern, original_path_str, re.IGNORECASE) or
|
|
re.search(pattern, resolved_path_str, re.IGNORECASE)):
|
|
return False, cls._get_user_friendly_error_message("windows_system", pattern, abs_path)
|
|
|
|
# Check Unix system directory patterns
|
|
for pattern in cls.UNIX_SYSTEM_PATTERNS:
|
|
if (re.search(pattern, original_path_str, re.IGNORECASE) or
|
|
re.search(pattern, resolved_path_str, re.IGNORECASE)):
|
|
return False, cls._get_user_friendly_error_message("unix_system", pattern, abs_path)
|
|
|
|
# Check for dangerous filenames
|
|
for pattern in cls.DANGEROUS_FILENAMES:
|
|
if re.search(pattern, abs_path.name, re.IGNORECASE):
|
|
return False, f"Dangerous filename pattern detected: {pattern}"
|
|
|
|
# Check if path is within base directory
|
|
if base_dir:
|
|
base_abs = base_dir.resolve()
|
|
try:
|
|
abs_path.relative_to(base_abs)
|
|
except ValueError:
|
|
return False, f"Path outside allowed directory: {abs_path} not in {base_abs}"
|
|
|
|
# Check for null bytes
|
|
if '\x00' in str(path):
|
|
return False, "Null byte detected in path"
|
|
|
|
# Check for Windows reserved names
|
|
if os.name == 'nt':
|
|
reserved_names = [
|
|
'CON', 'PRN', 'AUX', 'NUL',
|
|
'COM1', 'COM2', 'COM3', 'COM4', 'COM5', 'COM6', 'COM7', 'COM8', 'COM9',
|
|
'LPT1', 'LPT2', 'LPT3', 'LPT4', 'LPT5', 'LPT6', 'LPT7', 'LPT8', 'LPT9'
|
|
]
|
|
|
|
name_without_ext = abs_path.stem.upper()
|
|
if name_without_ext in reserved_names:
|
|
return False, f"Reserved Windows filename: {name_without_ext}"
|
|
|
|
return True, "Path is safe"
|
|
|
|
except Exception as e:
|
|
return False, f"Path validation error: {e}"
|
|
|
|
@classmethod
|
|
def validate_file_extension(cls, path: Path) -> Tuple[bool, str]:
|
|
"""
|
|
Validate file extension is allowed
|
|
|
|
Args:
|
|
path: Path to validate
|
|
|
|
Returns:
|
|
Tuple of (is_allowed: bool, message: str)
|
|
"""
|
|
extension = path.suffix.lower()
|
|
|
|
if not extension:
|
|
return True, "No extension (allowed)"
|
|
|
|
if extension in cls.ALLOWED_EXTENSIONS:
|
|
return True, f"Extension {extension} is allowed"
|
|
else:
|
|
return False, f"Extension {extension} is not allowed"
|
|
|
|
@classmethod
|
|
def sanitize_filename(cls, filename: str) -> str:
|
|
"""
|
|
Sanitize filename by removing dangerous characters
|
|
|
|
Args:
|
|
filename: Original filename
|
|
|
|
Returns:
|
|
Sanitized filename
|
|
"""
|
|
# Remove null bytes
|
|
filename = filename.replace('\x00', '')
|
|
|
|
# Remove or replace dangerous characters
|
|
dangerous_chars = r'[<>:"/\\|?*\x00-\x1f]'
|
|
filename = re.sub(dangerous_chars, '_', filename)
|
|
|
|
# Remove leading/trailing dots and spaces
|
|
filename = filename.strip('. ')
|
|
|
|
# Ensure not empty
|
|
if not filename:
|
|
filename = 'unnamed'
|
|
|
|
# Truncate if too long
|
|
if len(filename) > cls.MAX_FILENAME_LENGTH:
|
|
name, ext = os.path.splitext(filename)
|
|
max_name_len = cls.MAX_FILENAME_LENGTH - len(ext)
|
|
filename = name[:max_name_len] + ext
|
|
|
|
# Check for Windows reserved names
|
|
if os.name == 'nt':
|
|
name_without_ext = os.path.splitext(filename)[0].upper()
|
|
reserved_names = [
|
|
'CON', 'PRN', 'AUX', 'NUL',
|
|
'COM1', 'COM2', 'COM3', 'COM4', 'COM5', 'COM6', 'COM7', 'COM8', 'COM9',
|
|
'LPT1', 'LPT2', 'LPT3', 'LPT4', 'LPT5', 'LPT6', 'LPT7', 'LPT8', 'LPT9'
|
|
]
|
|
|
|
if name_without_ext in reserved_names:
|
|
filename = f"safe_{filename}"
|
|
|
|
return filename
|
|
|
|
@classmethod
|
|
def sanitize_input(cls, user_input: str, max_length: int = 1000) -> str:
|
|
"""
|
|
Sanitize user input
|
|
|
|
Args:
|
|
user_input: Raw user input
|
|
max_length: Maximum allowed length
|
|
|
|
Returns:
|
|
Sanitized input
|
|
"""
|
|
if not user_input:
|
|
return ""
|
|
|
|
# Remove null bytes and control characters
|
|
sanitized = re.sub(r'[\x00-\x08\x0b\x0c\x0e-\x1f\x7f]', '', user_input)
|
|
|
|
# Trim whitespace
|
|
sanitized = sanitized.strip()
|
|
|
|
# Truncate if too long
|
|
if len(sanitized) > max_length:
|
|
sanitized = sanitized[:max_length]
|
|
|
|
return sanitized
|
|
|
|
@classmethod
|
|
def validate_url(cls, url: str) -> Tuple[bool, str]:
|
|
"""
|
|
Validate URL for security issues
|
|
|
|
Args:
|
|
url: URL to validate
|
|
|
|
Returns:
|
|
Tuple of (is_safe: bool, message: str)
|
|
"""
|
|
try:
|
|
parsed = urllib.parse.urlparse(url)
|
|
|
|
# Check scheme
|
|
if parsed.scheme not in ['http', 'https']:
|
|
return False, f"Invalid scheme: {parsed.scheme}"
|
|
|
|
# Check for localhost/private IPs (basic check)
|
|
hostname = parsed.hostname
|
|
if hostname:
|
|
if hostname.lower() in ['localhost', '127.0.0.1', '::1']:
|
|
return False, "Localhost URLs not allowed"
|
|
|
|
# Basic private IP check
|
|
if hostname.startswith('192.168.') or hostname.startswith('10.') or hostname.startswith('172.'):
|
|
return False, "Private IP addresses not allowed"
|
|
|
|
# Check URL length
|
|
if len(url) > 2048:
|
|
return False, "URL too long"
|
|
|
|
return True, "URL is safe"
|
|
|
|
except Exception as e:
|
|
return False, f"URL validation error: {e}"
|
|
|
|
@classmethod
|
|
def check_permissions(cls, path: Path, required_permissions: Set[str]) -> Tuple[bool, List[str]]:
|
|
"""
|
|
Check file/directory permissions
|
|
|
|
Args:
|
|
path: Path to check
|
|
required_permissions: Set of required permissions ('read', 'write', 'execute')
|
|
|
|
Returns:
|
|
Tuple of (has_permissions: bool, missing_permissions: List[str])
|
|
"""
|
|
missing = []
|
|
|
|
try:
|
|
if not path.exists():
|
|
# For non-existent paths, check parent directory
|
|
parent = path.parent
|
|
if not parent.exists():
|
|
missing.append("path does not exist")
|
|
return False, missing
|
|
path = parent
|
|
|
|
if 'read' in required_permissions:
|
|
if not os.access(path, os.R_OK):
|
|
missing.append('read')
|
|
|
|
if 'write' in required_permissions:
|
|
if not os.access(path, os.W_OK):
|
|
missing.append('write')
|
|
|
|
if 'execute' in required_permissions:
|
|
if not os.access(path, os.X_OK):
|
|
missing.append('execute')
|
|
|
|
return len(missing) == 0, missing
|
|
|
|
except Exception as e:
|
|
missing.append(f"permission check error: {e}")
|
|
return False, missing
|
|
|
|
@classmethod
|
|
def validate_installation_target(cls, target_dir: Path) -> Tuple[bool, List[str]]:
|
|
"""
|
|
Validate installation target directory with enhanced Windows compatibility
|
|
|
|
Args:
|
|
target_dir: Target installation directory
|
|
|
|
Returns:
|
|
Tuple of (is_safe: bool, error_messages: List[str])
|
|
"""
|
|
errors = []
|
|
|
|
# Enhanced path resolution with Windows normalization
|
|
try:
|
|
abs_target = target_dir.resolve()
|
|
except Exception as e:
|
|
errors.append(f"Cannot resolve target path: {e}")
|
|
return False, errors
|
|
|
|
# Windows-specific path normalization
|
|
if os.name == 'nt':
|
|
# Normalize Windows paths for consistent comparison
|
|
abs_target_str = str(abs_target).lower().replace('/', '\\')
|
|
else:
|
|
abs_target_str = str(abs_target).lower()
|
|
|
|
# Special handling for Claude installation directory
|
|
claude_patterns = ['.claude', '.claude' + os.sep, '.claude\\', '.claude/']
|
|
is_claude_dir = any(abs_target_str.endswith(pattern) for pattern in claude_patterns)
|
|
|
|
if is_claude_dir:
|
|
try:
|
|
home_path = get_home_directory()
|
|
except (RuntimeError, OSError):
|
|
# If we can't determine home directory, skip .claude special handling
|
|
cls._log_security_decision("WARN", f"Cannot determine home directory for .claude validation: {abs_target}")
|
|
# Fall through to regular validation
|
|
else:
|
|
try:
|
|
# Verify it's specifically the current user's home directory
|
|
abs_target.relative_to(home_path)
|
|
|
|
# Enhanced Windows security checks for .claude directories
|
|
if os.name == 'nt':
|
|
# Check for junction points and symbolic links on Windows
|
|
if cls._is_windows_junction_or_symlink(abs_target):
|
|
errors.append("Installation to junction points or symbolic links is not allowed for security")
|
|
return False, errors
|
|
|
|
# Additional validation: verify it's in the current user's profile directory
|
|
# Use actual home directory comparison instead of username-based path construction
|
|
if ':' in abs_target_str and '\\users\\' in abs_target_str:
|
|
try:
|
|
# Check if target is within the user's actual home directory
|
|
home_path = get_home_directory()
|
|
abs_target.relative_to(home_path)
|
|
# Path is valid - within user's home directory
|
|
except ValueError:
|
|
# Path is outside user's home directory
|
|
current_user = os.environ.get('USERNAME', home_path.name)
|
|
errors.append(f"Installation must be in current user's directory ({current_user})")
|
|
return False, errors
|
|
|
|
# Check permissions
|
|
has_perms, missing = cls.check_permissions(target_dir, {'read', 'write'})
|
|
if not has_perms:
|
|
if os.name == 'nt':
|
|
errors.append(f"Insufficient permissions for Windows installation: {missing}. Try running as administrator or check folder permissions.")
|
|
else:
|
|
errors.append(f"Insufficient permissions: missing {missing}")
|
|
|
|
# Log successful validation for audit trail
|
|
cls._log_security_decision("ALLOW", f"Claude directory installation validated: {abs_target}")
|
|
return len(errors) == 0, errors
|
|
|
|
except ValueError:
|
|
# Not under current user's home directory
|
|
if os.name == 'nt':
|
|
errors.append("Claude installation must be in your user directory (e.g., C:\\Users\\YourName\\.claude)")
|
|
else:
|
|
errors.append("Claude installation must be in your home directory (e.g., ~/.claude)")
|
|
cls._log_security_decision("DENY", f"Claude directory outside user home: {abs_target}")
|
|
return False, errors
|
|
|
|
# Validate path for non-.claude directories
|
|
is_safe, msg = cls.validate_path(target_dir)
|
|
if not is_safe:
|
|
if os.name == 'nt':
|
|
# Enhanced Windows error messages
|
|
if "dangerous path pattern" in msg.lower():
|
|
errors.append(f"Invalid Windows path: {msg}. Ensure path doesn't contain dangerous patterns or reserved directories.")
|
|
elif "path too long" in msg.lower():
|
|
errors.append(f"Windows path too long: {msg}. Windows has a 260 character limit for most paths.")
|
|
elif "reserved" in msg.lower():
|
|
errors.append(f"Windows reserved name: {msg}. Avoid names like CON, PRN, AUX, NUL, COM1-9, LPT1-9.")
|
|
else:
|
|
errors.append(f"Invalid target path: {msg}")
|
|
else:
|
|
errors.append(f"Invalid target path: {msg}")
|
|
|
|
# Check permissions with platform-specific guidance
|
|
has_perms, missing = cls.check_permissions(target_dir, {'read', 'write'})
|
|
if not has_perms:
|
|
if os.name == 'nt':
|
|
errors.append(f"Insufficient Windows permissions: {missing}. Try running as administrator or check folder security settings in Properties > Security.")
|
|
else:
|
|
errors.append(f"Insufficient permissions: {missing}. Try: chmod 755 {target_dir}")
|
|
|
|
# Check if it's a system directory with enhanced messages
|
|
system_dirs = [
|
|
Path('/etc'), Path('/bin'), Path('/sbin'), Path('/usr/bin'), Path('/usr/sbin'),
|
|
Path('/var'), Path('/tmp'), Path('/dev'), Path('/proc'), Path('/sys')
|
|
]
|
|
|
|
if os.name == 'nt':
|
|
system_dirs.extend([
|
|
Path('C:\\Windows'), Path('C:\\Program Files'), Path('C:\\Program Files (x86)')
|
|
])
|
|
|
|
for sys_dir in system_dirs:
|
|
try:
|
|
if abs_target.is_relative_to(sys_dir):
|
|
if os.name == 'nt':
|
|
errors.append(f"Cannot install to Windows system directory: {sys_dir}. Use a location in your user profile instead (e.g., C:\\Users\\YourName\\).")
|
|
else:
|
|
errors.append(f"Cannot install to system directory: {sys_dir}. Use a location in your home directory instead (~/).")
|
|
cls._log_security_decision("DENY", f"Attempted installation to system directory: {sys_dir}")
|
|
break
|
|
except (ValueError, AttributeError):
|
|
# is_relative_to not available in older Python versions
|
|
try:
|
|
abs_target.relative_to(sys_dir)
|
|
errors.append(f"Cannot install to system directory: {sys_dir}")
|
|
break
|
|
except ValueError:
|
|
continue
|
|
|
|
return len(errors) == 0, errors
|
|
|
|
@classmethod
|
|
def validate_component_files(cls, file_list: List[Tuple[Path, Path]], base_source_dir: Path, base_target_dir: Path) -> Tuple[bool, List[str]]:
|
|
"""
|
|
Validate list of files for component installation
|
|
|
|
Args:
|
|
file_list: List of (source, target) path tuples
|
|
base_source_dir: Base source directory
|
|
base_target_dir: Base target directory
|
|
|
|
Returns:
|
|
Tuple of (all_safe: bool, error_messages: List[str])
|
|
"""
|
|
errors = []
|
|
|
|
for source, target in file_list:
|
|
# Validate source path
|
|
is_safe, msg = cls.validate_path(source, base_source_dir)
|
|
if not is_safe:
|
|
errors.append(f"Invalid source path {source}: {msg}")
|
|
|
|
# Validate target path
|
|
is_safe, msg = cls.validate_path(target, base_target_dir)
|
|
if not is_safe:
|
|
errors.append(f"Invalid target path {target}: {msg}")
|
|
|
|
# Validate file extension
|
|
is_allowed, msg = cls.validate_file_extension(source)
|
|
if not is_allowed:
|
|
errors.append(f"File {source}: {msg}")
|
|
|
|
return len(errors) == 0, errors
|
|
|
|
@classmethod
|
|
def _normalize_path_for_validation(cls, path: Path) -> str:
|
|
"""
|
|
Normalize path for consistent validation across platforms
|
|
|
|
Args:
|
|
path: Path to normalize
|
|
|
|
Returns:
|
|
Normalized path string for validation
|
|
"""
|
|
path_str = str(path)
|
|
|
|
# Convert to lowercase for case-insensitive comparison
|
|
path_str = path_str.lower()
|
|
|
|
# Normalize path separators for consistent pattern matching
|
|
if os.name == 'nt': # Windows
|
|
# Convert forward slashes to backslashes for Windows
|
|
path_str = path_str.replace('/', '\\')
|
|
# Ensure consistent drive letter format
|
|
if len(path_str) >= 2 and path_str[1] == ':':
|
|
path_str = path_str[0] + ':\\' + path_str[3:].lstrip('\\')
|
|
else: # Unix-like systems
|
|
# Convert backslashes to forward slashes for Unix
|
|
path_str = path_str.replace('\\', '/')
|
|
# Ensure single leading slash
|
|
if path_str.startswith('//'):
|
|
path_str = '/' + path_str.lstrip('/')
|
|
|
|
return path_str
|
|
|
|
@classmethod
|
|
def _get_user_friendly_error_message(cls, error_type: str, pattern: str, path: Path) -> str:
|
|
"""
|
|
Generate user-friendly error messages with actionable suggestions
|
|
|
|
Args:
|
|
error_type: Type of error (traversal, windows_system, unix_system)
|
|
pattern: The regex pattern that matched
|
|
path: The path that caused the error
|
|
|
|
Returns:
|
|
User-friendly error message with suggestions
|
|
"""
|
|
if error_type == "traversal":
|
|
return (
|
|
f"Security violation: Directory traversal pattern detected in path '{path}'. "
|
|
f"Paths containing '..' or '//' are not allowed for security reasons. "
|
|
f"Please use an absolute path without directory traversal characters."
|
|
)
|
|
elif error_type == "windows_system":
|
|
if pattern == r'^c:\\windows\\':
|
|
return (
|
|
f"Cannot install to Windows system directory '{path}'. "
|
|
f"Please choose a location in your user directory instead, "
|
|
f"such as C:\\Users\\{os.environ.get('USERNAME', 'YourName')}\\.claude\\"
|
|
)
|
|
elif pattern == r'^c:\\program files\\':
|
|
return (
|
|
f"Cannot install to Program Files directory '{path}'. "
|
|
f"Please choose a location in your user directory instead, "
|
|
f"such as C:\\Users\\{os.environ.get('USERNAME', 'YourName')}\\.claude\\"
|
|
)
|
|
else:
|
|
return (
|
|
f"Cannot install to Windows system directory '{path}'. "
|
|
f"Please choose a location in your user directory instead."
|
|
)
|
|
elif error_type == "unix_system":
|
|
system_dirs = {
|
|
r'^/dev/': "/dev (device files)",
|
|
r'^/etc/': "/etc (system configuration)",
|
|
r'^/bin/': "/bin (system binaries)",
|
|
r'^/sbin/': "/sbin (system binaries)",
|
|
r'^/usr/bin/': "/usr/bin (user binaries)",
|
|
r'^/usr/sbin/': "/usr/sbin (user system binaries)",
|
|
r'^/var/': "/var (variable data)",
|
|
r'^/tmp/': "/tmp (temporary files)",
|
|
r'^/proc/': "/proc (process information)",
|
|
r'^/sys/': "/sys (system information)"
|
|
}
|
|
|
|
dir_desc = system_dirs.get(pattern, "system directory")
|
|
return (
|
|
f"Cannot install to {dir_desc} '{path}'. "
|
|
f"Please choose a location in your home directory instead, "
|
|
f"such as ~/.claude/ or ~/SuperClaude/"
|
|
)
|
|
else:
|
|
return f"Security validation failed for path '{path}'"
|
|
|
|
@classmethod
|
|
def _is_windows_junction_or_symlink(cls, path: Path) -> bool:
|
|
"""
|
|
Check if path is a Windows junction point or symbolic link
|
|
|
|
Args:
|
|
path: Path to check
|
|
|
|
Returns:
|
|
True if path is a junction point or symlink, False otherwise
|
|
"""
|
|
if os.name != 'nt':
|
|
return False
|
|
|
|
try:
|
|
# Only check if path exists to avoid filesystem errors during testing
|
|
if not path.exists():
|
|
return False
|
|
|
|
# Check if path is a symlink (covers most cases)
|
|
if path.is_symlink():
|
|
return True
|
|
|
|
# Additional Windows-specific checks for junction points
|
|
try:
|
|
import stat
|
|
st = path.stat()
|
|
# Check for reparse point (junction points have this attribute)
|
|
if hasattr(st, 'st_reparse_tag') and st.st_reparse_tag != 0:
|
|
return True
|
|
except (OSError, AttributeError):
|
|
pass
|
|
|
|
# Alternative method using os.path.islink
|
|
try:
|
|
if os.path.islink(str(path)):
|
|
return True
|
|
except (OSError, AttributeError):
|
|
pass
|
|
|
|
except (OSError, AttributeError, NotImplementedError):
|
|
# If we can't determine safely, default to False
|
|
# This ensures the function doesn't break validation
|
|
pass
|
|
|
|
return False
|
|
|
|
@classmethod
|
|
def _log_security_decision(cls, action: str, message: str) -> None:
|
|
"""
|
|
Log security validation decisions for audit trail
|
|
|
|
Args:
|
|
action: Security action taken (ALLOW, DENY, WARN)
|
|
message: Description of the decision
|
|
"""
|
|
try:
|
|
import logging
|
|
import datetime
|
|
|
|
# Create security logger if it doesn't exist
|
|
security_logger = logging.getLogger('superclaude.security')
|
|
if not security_logger.handlers:
|
|
# Set up basic logging if not already configured
|
|
handler = logging.StreamHandler()
|
|
formatter = logging.Formatter(
|
|
'%(asctime)s - SECURITY - %(levelname)s - %(message)s'
|
|
)
|
|
handler.setFormatter(formatter)
|
|
security_logger.addHandler(handler)
|
|
security_logger.setLevel(logging.INFO)
|
|
|
|
# Log the security decision
|
|
timestamp = datetime.datetime.now().isoformat()
|
|
log_message = f"[{action}] {message} (PID: {os.getpid()})"
|
|
|
|
if action == "DENY":
|
|
security_logger.warning(log_message)
|
|
else:
|
|
security_logger.info(log_message)
|
|
|
|
except Exception:
|
|
# Don't fail security validation if logging fails
|
|
pass
|
|
|
|
@classmethod
|
|
def create_secure_temp_dir(cls, prefix: str = "superclaude_") -> Path:
|
|
"""
|
|
Create secure temporary directory
|
|
|
|
Args:
|
|
prefix: Prefix for temp directory name
|
|
|
|
Returns:
|
|
Path to secure temporary directory
|
|
"""
|
|
import tempfile
|
|
|
|
# Create with secure permissions (0o700)
|
|
temp_dir = Path(tempfile.mkdtemp(prefix=prefix))
|
|
temp_dir.chmod(0o700)
|
|
|
|
return temp_dir
|
|
|
|
@classmethod
|
|
def secure_delete(cls, path: Path) -> bool:
|
|
"""
|
|
Securely delete file or directory
|
|
|
|
Args:
|
|
path: Path to delete
|
|
|
|
Returns:
|
|
True if successful, False otherwise
|
|
"""
|
|
try:
|
|
if not path.exists():
|
|
return True
|
|
|
|
if path.is_file():
|
|
# Overwrite file with random data before deletion
|
|
try:
|
|
import secrets
|
|
file_size = path.stat().st_size
|
|
|
|
with open(path, 'r+b') as f:
|
|
# Overwrite with random data
|
|
f.write(secrets.token_bytes(file_size))
|
|
f.flush()
|
|
os.fsync(f.fileno())
|
|
except Exception:
|
|
pass # If overwrite fails, still try to delete
|
|
|
|
path.unlink()
|
|
|
|
elif path.is_dir():
|
|
# Recursively delete directory contents
|
|
import shutil
|
|
shutil.rmtree(path)
|
|
|
|
return True
|
|
|
|
except Exception:
|
|
return False |